CVE-2023-27313

CWE-2503 documents3 sources
Severity
8.8HIGH
EPSS
0.2%
top 60.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netapp Snapcenter
Timeline
PublishedOct 12

Description

SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow an authenticated unprivileged user to gain access as an admin user.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:HExploitability: 2.8 | Impact: 5.5

Affected Packages2 packages

CVEListV5netapp/snapcenter3.04.9
NVDnetapp/snapcenter3.04.9

🔴Vulnerability Details

2
GHSA
GHSA-vmx7-gqgq-2jhh: SnapCenter versions 32023-10-12
CVEList
Privilege Escalation Vulnerability in SnapCenter2023-10-12
CVE-2023-27313 (HIGH CVSS 8.8) | SnapCenter versions 3.x and 4.x pri | cvebase.io